$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft File: DO-JBd1l6R5Qazs5nCCiIork_T8.mft (raw, json) Hash identifier: HR62K/dCfLXtnXsOoBO9K+zsEdSks3vR3M4tywHzoHM= Subject key identifier: C2:A8:CE:BB:0E:9F:B5:AF:8E:DB:74:62:69:8A:86:3A:3D:C6:B5:CE Authority key identifier: 0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F Certificate issuer: /CN=A91DB421/serialNumber=0CEF8905DD65E91E506B3B399C20A2228AE4FD3F Certificate serial: 090D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft Manifest number: 0907 Signing time: Fri 04 Apr 2025 20:30:50 +0000 Manifest this update: Fri 04 Apr 2025 20:30:49 +0000 Manifest next update: Fri 11 Apr 2025 20:30:49 +0000 Files and hashes: 1: DO-JBd1l6R5Qazs5nCCiIork_T8.crl (hash: L+dgn4wwSs4rCOodhZ8rJbowuzO4Xq4nT6g9TvEtDjM=) 2: A9511B7AA0B511EA94365A38C4F9AE02.roa (hash: 8rvezRlfEmng/UgYNLuDBBrL/AQ4sVZHRDguwah88WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2317 (0x90d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB421 Validity Not Before: Apr 4 20:30:49 2025 GMT Not After : Apr 11 20:30:49 2025 GMT Subject: CN=67f04179-078b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:aa:e9:77:77:f9:66:39:02:63:3f:48:76:46: fd:53:1f:79:b4:8f:15:88:e3:fe:9b:ad:e2:64:8f: 93:df:17:86:99:d4:8f:d5:f1:3a:4e:24:71:d4:e2: ea:34:16:d3:61:4a:9e:d6:84:63:49:bf:ba:16:79: 0b:0f:5a:31:71:1c:cd:d1:b9:65:fb:da:ec:e0:27: 12:56:eb:8e:8a:42:28:7f:65:92:e8:cf:ac:09:0e: 90:41:24:43:a0:51:63:de:b3:e3:07:ca:88:91:53: b8:01:15:07:43:fe:fc:b2:8d:f3:de:fb:97:08:a9: 20:2c:f8:cd:97:e0:40:a0:84:cb:d8:17:3e:f5:df: 5b:01:8f:14:30:96:24:73:34:08:6d:05:41:c0:0d: ba:c2:ff:39:ee:d2:86:e8:e6:46:a1:26:c7:19:d1: 88:1d:21:23:ed:90:f7:57:00:01:35:46:7b:be:90: ac:42:58:8c:79:32:4f:7f:5c:98:5b:cb:7c:f7:0d: b0:65:fa:98:62:dc:13:58:a1:39:2c:c3:3e:cb:1e: a5:9a:6c:13:c9:b7:f7:28:73:80:85:67:3e:de:71: c8:ef:62:1a:08:8c:60:91:06:19:d7:a6:17:bb:fa: f7:89:27:e3:99:e3:e3:d4:65:bd:2b:50:01:4a:f5: a8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A8:CE:BB:0E:9F:B5:AF:8E:DB:74:62:69:8A:86:3A:3D:C6:B5:CE X509v3 Authority Key Identifier: keyid:0C:EF:89:05:DD:65:E9:1E:50:6B:3B:39:9C:20:A2:22:8A:E4:FD:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO-JBd1l6R5Qazs5nCCiIork_T8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB421/1198060AA0B411EA97719E35C4F9AE02/DO-JBd1l6R5Qazs5nCCiIork_T8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:3b:7e:87:09:80:ca:fa:a8:e7:fc:df:4f:9f:c1:08:71:bf: aa:97:77:95:fe:5a:02:41:d6:04:8c:5f:30:9f:84:3e:e6:03: 62:f8:4c:4f:64:9c:fe:f9:da:97:5b:18:4e:18:59:6e:86:46: c9:7f:05:05:61:cf:97:e4:20:54:21:cc:18:9e:05:3d:52:b3: 31:6f:aa:de:36:fc:6f:48:cd:40:3c:19:91:12:5e:f6:0c:eb: 80:09:af:4e:09:dc:83:08:f8:f1:d9:80:1a:cf:b4:d0:66:13: dd:2c:b3:82:7f:11:49:60:30:c5:ce:aa:24:34:23:84:f4:0a: 40:45:c6:80:17:63:ce:22:ba:ff:d7:a2:16:15:c5:f1:43:28: 3d:65:3b:0c:4b:af:3b:63:ef:71:af:04:e1:85:69:e1:1f:29: 63:51:0f:e1:94:24:7a:46:0f:ec:71:4c:e7:c5:03:9b:92:4c: 3f:fc:7c:7e:f2:a7:bf:8f:7a:ba:de:92:69:48:ec:34:7d:bf: 24:4c:67:70:3a:ea:d9:57:5e:9e:33:a8:c7:a3:0f:15:5b:9d: 0e:19:72:ae:7b:e7:71:e5:9d:55:01:9c:9a:1f:c4:0b:5c:29: be:32:a3:21:5c:e3:49:fd:86:93:e0:a7:5b:bf:db:8e:b1:24: 8b:16:ca:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0MjExMTAvBgNVBAUTKDBDRUY4OTA1REQ2NUU5MUU1MDZCM0IzOTlDMjBBMjIy OEFFNEZEM0YwHhcNMjUwNDA0MjAzMDQ5WhcNMjUwNDExMjAzMDQ5WjAYMRYwFAYD VQQDEw02N2YwNDE3OS0wNzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqrpd3f5ZjkCYz9Idkb9Ux95tI8ViOP+m63iZI+T3xeGmdSP1fE6TiRx1OLq NBbTYUqe1oRjSb+6FnkLD1oxcRzN0bll+9rs4CcSVuuOikIof2WS6M+sCQ6QQSRD oFFj3rPjB8qIkVO4ARUHQ/78so3z3vuXCKkgLPjNl+BAoITL2Bc+9d9bAY8UMJYk czQIbQVBwA26wv857tKG6OZGoSbHGdGIHSEj7ZD3VwABNUZ7vpCsQliMeTJPf1yY W8t89w2wZfqYYtwTWKE5LMM+yx6lmmwTybf3KHOAhWc+3nHI72IaCIxgkQYZ16YX u/r3iSfjmePj1GW9K1ABSvWoGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKozrsO n7Wvjtt0YmmKhjo9xrXOMB8GA1UdIwQYMBaAFAzviQXdZekeUGs7OZwgoiKK5P0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQyMS8xMTk4MDYwQUEw QjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZSNVFhenM1bkNDaUlvcmtf VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPLUpCZDFsNlI1UWF6czVuQ0NpSW9ya19UOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQyMS8xMTk4MDYwQUEwQjQxMUVBOTc3MTlFMzVDNEY5QUUwMi9ETy1KQmQxbDZS NVFhenM1bkNDaUlvcmtfVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7O36HCYDK+qjn/N9Pn8EIcb+ql3eV/loCQdYEjF8wn4Q+5gNi+ExP ZJz++dqXWxhOGFluhkbJfwUFYc+X5CBUIcwYngU9UrMxb6reNvxvSM1APBmREl72 DOuACa9OCdyDCPjx2YAaz7TQZhPdLLOCfxFJYDDFzqokNCOE9ApARcaAF2POIrr/ 16IWFcXxQyg9ZTsMS687Y+9xrwThhWnhHyljUQ/hlCR6Rg/scUznxQObkkw//Hx+ 8qe/j3q63pJpSOw0fb8kTGdwOurZV16eM6jHow8VW50OGXKue+dx5Z1VAZyaH8QL XCm+MqMhXONJ/YaT4Kdbv9uOsSSLFsp7 -----END CERTIFICATE-----Generated at Fri Apr 4 22:26:56 2025 by rpki-client